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Amendments to the Specification: 

Please replace the following paragraphs to overcome tlie ExaiTiiner's objections to the 
specification regarding missing serial numbers. 

Page 1 1 , paragraph beginning at line 1 1 . 



Therefore, AAA can be based upon the source> destination, and type of traffic. Upon 
receiving a packet, the AAA module will look at various parameters such as the link layer 
information, such as the circuit, source MAC address, VLAN tag, circuit ID, along with network 
information such as source IP addresses, source port. Tliis source information is stored into a 
AAA subscriber table. Secondly, information is gathered about the destination, such as the 
destination P addresses, destination port, to determine what type of authentication is needed to 
access particular services. Third, the packet is interrogated to receive information such as the 
protocol type, port or the packet type to determine what type of audientication is required for a 
packet to be authorized for network access. Once this information is gathered, a matching of the 
authentication requirements versus tlie authorization is applied. If there is a match, the packet is 
forwarded and allowed access. If this match fails, the subscriber information for that packet is 
set as pending for authorization. Pending for authorization packets require further authentication 
and authorization before being allowed to access the system. Authorization can be determined 
based upon the attributes determined by the packet, or if not matched, the user will have to 
provide authentication, which can be done as described in the HPR patent, Sorial - Mjmbor United 
States Patent No. 6,636.894, issued October 21, 2003, filed December 8. 1999. entitled "Systems 
and Methods For Redirecting Users Having Transparent Computer Access To A Network Using 
A Gateway Device Having Redirecrion Capability ' \ in the name of inventor Short et al. The 
'894 Short patent is herein incorporated by reference, aad^i aoorporatod horoin by roforonce. 



PAGE 4112* RCVD AT 1/2912004 5:06:33 PM [Easte^^ 



Jan-29-04 05:02pm From- T-313 P. 005/012 F-D60 



Appl.No,: 09/458,602 
Filed: 12/08/99 
Page 3 



l^age 11, paragraph beginning at line 30^^ 




For exaniple, once the gateway device identifies the location from which access is 
requested, such as from a specific pon of a hotel room, the gateway device can then determine 
tlie access rights of tlie user at Uiat specific location. It should be appreciated that as aa 
alternative to location-based identification the gateway device may identify a user or a user's 
computer based upon attributes otlier than location* For example, the gateway device may 
receive a MAC address identifying a particular user's computer (for example, a user in 
communication with the gateway device through a conventional modem), as is well known in the 
art, although the embodiments described herein will refer primarily to location-based 
identification as described above. Additionally, a user can be identified by the gateway device 
based upon a user ID and password which the user can input in response to a query for such 
information. This is discussed below and in U,S- Patent Application S e rial Number 6.636.894, 
issued October 2L 2003. in the name inventor Short et al.. entitled "Systems and Methods For 
Redirecting Users Having Transparent Computer Access To A Network Using A Gateway 
Device Having Redirection CapabiUty", filed concmxently v/ith this application and incorporated 
herein by reference. In addition, a user staying in a particular hotel room may be authorized 
access based upon the tiser's location. Alternatively, the user can be authorized access to the 
network and online services based upon tlie user's identification* or the user's computer, 
regardless where the user is obtairing access. Furthermore, access may be associated with a 
combination of attributes. For example, a user may be authorized access to a network where the 
user has input the user's identification and has accessed the network from a particular room. 
Such a requirement could prevent unauthorized users also staying in a particular room from 
obtaining network access. 
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Page 15, para^^jfiTbeginning at line 27. 

First, a user is deemed valid (i.e., to have access) where the user's profile in the user 
profile database states so. If a user is determined to be valid, the user's traffic can be allowed to 
proceed out of the gateway device from the portal page to the networks or online services the 
user wishes to access, or the user may be redirected to a portal page, typically, a more user- 
specific portal page, as described in U.S. Patent Application S e rial No, 6,636.894, issued 
October 21 , 2Q03, in tlie name inventor Short et a]., entitled "Systems and Methods For 
Redirecdng Users Having Transparent Computer Access To A Network Using A Gateway 
Device Having Redirection Capability, (hereinafter "Redirecting Application'*) filed 
concun-ently herewidi, prior to being allowed access to the destination network. For example, a 
user may be autoraatically forwarded to a user-input destination address, such as an Internet 
address, for example, where a user has firee access associated with die user's hotel room. 
Alternatively, this may occur where the user has already ptirchased access and the user has not 
exhausted available access time. • 
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